Splunk® Supported Add-ons

Splunk Add-on for CyberArk EPM

Acrobat logo Download manual as PDF

Acrobat logo Download topic as PDF

About the Splunk Add-on for CyberArk EPM

Version 1.2.0
Vendor Products CyberArk Endpoint Privilege Manager v11.6, v21.10

The Splunk Add-on for CyberArk EPM allows a Splunk software administrator to pull aggregated events of Application Events, Policy Audit, and Threat Detection categories using the cloud administration APIs of CyberArk EPM. Splunk Add-on for CyberArk EPM can also collect logs related to policies, computers, and computer groups.

This add-on provides modular inputs and CIM-compatible knowledge to use with other Splunk apps, such as Splunk Enterprise Security and the Splunk App for PCI Compliance.

This TA supports SaaS version of CyberArk EPM and not the on-prem version.

This add-on is only Python3 compatible.

Download the Splunk Add-on for CyberArk EPM from Splunkbase at http://splunkbase.splunk.com/app/5160.

Last modified on 28 January, 2022
Installation overview

This documentation applies to the following versions of Splunk® Supported Add-ons: released

Was this documentation topic helpful?

You must be logged into splunk.com in order to post comments. Log in now.

Please try to keep this discussion focused on the content covered in this documentation topic. If you have a more general question about Splunk functionality or are experiencing a difficulty with Splunk, consider posting a question to Splunkbase Answers.

0 out of 1000 Characters